Fraud Mitigation Techniques

Introduction

Our Card-Not-Present (CNP) Fraud Mitigation Techniques white paper provides in-depth information regarding several Fraud Mitigation techniques. These techniques are now categorized by use case, channel, and stakeholder for each. The objective is to allow you learn more easily about the techniques that meet your needs.

The fraud mitigation techniques were compiled and written by payments industry leaders with a wide array of perspectives and expertise, and as more data becomes available, this page will grow. All information can be filtered using the box selections below, which will direct you to specific documentation regarding your selection. This documentation contains information on the selected technique, including applicability to the various channels, use cases, stakeholders, technical features and risks plus links to sources for further reading.

Please note: The information and materials available on this web page (“Information”) is provided solely for convenience and does not constitute legal or technical advice. All representations or warranties, express or implied, are expressly disclaimed, including without limitation, implied warranties of merchantability or fitness for a particular purpose and all warranties regarding accuracy, completeness, adequacy, results, title and non-infringement. All Information is limited to the scenarios, stakeholders and other matters specified, and should be considered in light of applicable laws, regulations, industry rules and requirements, facts, circumstances and other relevant factors. None of the Information should be interpreted or construed to require or promote the establishment of any solution, practice, configuration, rule, requirement or specification inconsistent with applicable legal requirements, any of which requirements may change over time. The U.S. Payments Forum assumes no responsibility to support, maintain or update the Information, regardless of any such change. Use of or reliance on the Information is at the user’s sole risk, and users are strongly encouraged to consult with their respective payment networks, acquirers, processors, vendors and appropriately qualified technical and legal experts prior to all implementation decisions.

Channel:

Use Case:

Stakeholder:

Fraud Mitigation Technique	Description	Document file name	Channel	Use Case	Stakeholder
One-Time-Passcode (OTP) Display Card	Token in credit card format to generate passcodes	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/One-Time-Passcode-OTP.pdf	In-App Merchant App\|Mobile browser\|Desktop/Laptop computer\|Phone	Authentication onboarding\|Authentication transaction	Issuers
Customer Website/Mobile Behavior	Monitoring behavior on websites and mobile devices to detect potential fraud	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Customer-WebsiteMobile-Behavior.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer	Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Issuers\|Wallet/Online Payment Providers\|Acquirer Processors
Interactive Voice Response (IVR) Voice Verification	Biometric use of voices to help confirm identity	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Interactive-Voice-Response-IVR-Voice-Verification.pdf	Phone	Customer onboarding \| Authentication onboarding \| Authentication transaction	Merchants\|Issuers
Negative/Positive Database	List of ecommerce customer attributes that can inform decision to approve or decline a transaction	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/NegativePositive-Database.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer\|Phone	Customer onboarding\|Authentication onboarding\|Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Issuers\|Issuer Processors\|Wallet/Online Payment Providers\|Acquirer Processors
Velocity Checks	Monitoring frequency of certain transaction data elements as means of assessing fraud risk	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Velocity-Checks.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer\|Phone	Authentication onboarding\|Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Issuers\|Issuer Processors\|Wallet/Online Payment Providers\|Acquirer Processors
Address Verification Service (AVS)	Confirming a customer's address at time of purchase	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Address-Verification-Service-AVS.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer\|Phone	Customer onboarding\|Authentication onboarding\|Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Issuers\|Issuer Processors\|Wallet/Online Payment Providers\|Acquirer Processors
Browser Cookies	Means of tagging a device so it can be identified	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Browser-Cookies.pdf	Mobile browser\|Desktop/Laptop computer	Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Acquirer Processors
Multifactor Authentication	Using multiple authentication methods from independent categories	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Multifactor-Authentication.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer\|Phone	Customer onboarding\|Authentication onboarding\|Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Issuers\|Wallet/Online Payment Providers\|Acquirer Processors
Check ID or Credit Card upon Order Pick-up	Verifying the person picking up an order is the person who bought the item	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Check-ID-or-Credit-Card-upon-Order-Pick-up.pdf		Authentication transaction\|Post-authorization review	Merchants
Transaction Alerts/Controls/Notification Services	Issuer-based controls that alert cardholders of particular activities	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Transaction-AlertsControlsNotification-Services.pdf	Mobile browser\|Desktop/Laptop computer\|Phone	Authorization\|Post-authorization review	Issuers\|Issuer Processors\|Wallet/Online Payment Providers
Static Card Security Code	Fixed security code linked to a card account	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Static-Card-Security-Code.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer\|Phone	Authentication onboarding\|Authentication transaction\|Authorization	Merchants\|Wallet/Online Payment Providers\|Acquirer Processors
Fraud Scoring	Models that use various data sources to assign a risk score to activities	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Fraud-Scoring.pdf	In-App merchant app\|Mobile browser\|Desktop/Laptop computer	Authentication onboarding\|Authentication transaction\|Authorization\|Post-authorization review	Merchants\|Issuers\|Issuer Processors\|Wallet/Online Payment Providers\|Acquirer Processors
Common Point-of-Purchase Analysis	Technique to determine source of a card breach and assess likelihood that certain cards have been compromised	https://www.uspaymentsforum.org/wp-content/uploads/2021/08/Common-Point-of-Purchase-Analysis.pdf			Issuers\|Issuer Processors\|Acquirer Processors
			Channel	Use Case	Stakeholder

Fraud Mitigation Techniques

Fraud Mitigation Techniques

Share this